(commons-beanutils) branch master updated: Bump github/codeql-action from 3.25.1 to 3.25.3 (#240)
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-beanutils.git
The following commit(s) were added to refs/heads/master by this push:
new 0536f070 Bump github/codeql-action from 3.25.1 to 3.25.3 (#240)
0536f070 is described below
commit 0536f0704ec68836f8040d1da18daa1501012cc1
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Fri Apr 26 22:42:35 2024 -0400
Bump github/codeql-action from 3.25.1 to 3.25.3 (#240)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from
3.25.1 to 3.25.3.
- [Release notes](https://github.com/github/codeql-action/releases)
-
[Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
-
[Commits](https://github.com/github/codeql-action/compare/c7f9125735019aa87cfc361530512d50ea439c71...d39d31e687223d841ef683f52467bd88e9b21c14)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
---
.github/workflows/codeql-analysis.yml | 6 +++---
.github/workflows/scorecards-analysis.yml | 2 +-
2 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/.github/workflows/codeql-analysis.yml
b/.github/workflows/codeql-analysis.yml
index a0ed327c..0a7a3cfe 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -57,7 +57,7 @@ jobs:
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
- uses: github/codeql-action/init@c7f9125735019aa87cfc361530512d50ea439c71
# v3.25.1
+ uses: github/codeql-action/init@d39d31e687223d841ef683f52467bd88e9b21c14
# v3.25.3
with:
languages: ${{ matrix.language }}
# If you wish to specify custom queries, you can do so here or in a
config file.
@@ -68,7 +68,7 @@ jobs:
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
# If this step fails, then you should remove it and run the build manually
(see below)
- name: Autobuild
- uses:
github/codeql-action/autobuild@c7f9125735019aa87cfc361530512d50ea439c71 #
v3.25.1
+ uses:
github/codeql-action/autobuild@d39d31e687223d841ef683f52467bd88e9b21c14 #
v3.25.3
# ℹ️ Command-line programs to run using the OS shell.
# https://git.io/JvXDl
@@ -82,4 +82,4 @@ jobs:
# make release
- name: Perform CodeQL Analysis
- uses:
github/codeql-action/analyze@c7f9125735019aa87cfc361530512d50ea439c71 # v3.25.1
+ uses:
github/codeql-action/analyze@d39d31e687223d841ef683f52467bd88e9b21c14 # v3.25.3
diff --git a/.github/workflows/scorecards-analysis.yml
b/.github/workflows/scorecards-analysis.yml
index bf4709f0..b8532fc3 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -64,6 +64,6 @@ jobs:
retention-days: 5
- name: "Upload to code-scanning"
-uses:
github/codeql-action/upload-sarif@c7f9125735019aa87cfc361530512d50ea439c71#
3.25.1
+uses:
github/codeql-action/upload-sarif@d39d31e687223d841ef683f52467bd88e9b21c14#
3.25.3
with:
sarif_file: results.sarif
(commons-validator) branch dependabot/github_actions/actions/checkout-4.1.4 deleted (was b5e2f90d)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/checkout-4.1.4 in repository https://gitbox.apache.org/repos/asf/commons-validator.git was b5e2f90d Bump actions/checkout from 4.1.3 to 4.1.4 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-beanutils) branch dependabot/github_actions/github/codeql-action-3.25.3 deleted (was ae6c376b)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-3.25.3 in repository https://gitbox.apache.org/repos/asf/commons-beanutils.git was ae6c376b Bump github/codeql-action from 3.25.1 to 3.25.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-beanutils) branch dependabot/github_actions/actions/checkout-4.1.4 deleted (was 1f11e9df)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/checkout-4.1.4 in repository https://gitbox.apache.org/repos/asf/commons-beanutils.git was 1f11e9df Bump actions/checkout from 4.1.3 to 4.1.4 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-beanutils) branch master updated: Bump actions/checkout from 4.1.3 to 4.1.4 (#239)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-beanutils.git The following commit(s) were added to refs/heads/master by this push: new fd04698c Bump actions/checkout from 4.1.3 to 4.1.4 (#239) fd04698c is described below commit fd04698c1f284e45319e910a729662600c89f6d7 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> AuthorDate: Fri Apr 26 22:42:25 2024 -0400 Bump actions/checkout from 4.1.3 to 4.1.4 (#239) Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.3 to 4.1.4. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/1d96c772d19495a3b5c517cd2bc0cb401ea0529f...0ad4b8fadaa221de15dcec353f45205ec38ea70b) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/coverage.yml| 2 +- .github/workflows/maven.yml | 2 +- .github/workflows/scorecards-analysis.yml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 0a59457f..a0ed327c 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -45,7 +45,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3 + uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 with: persist-credentials: false - uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 diff --git a/.github/workflows/coverage.yml b/.github/workflows/coverage.yml index bc3648db..15b73c3f 100644 --- a/.github/workflows/coverage.yml +++ b/.github/workflows/coverage.yml @@ -29,7 +29,7 @@ jobs: java: [ 8 ] steps: -- uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3 +- uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 with: persist-credentials: false - uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 diff --git a/.github/workflows/maven.yml b/.github/workflows/maven.yml index 05a11e3e..2b2b0610 100644 --- a/.github/workflows/maven.yml +++ b/.github/workflows/maven.yml @@ -38,7 +38,7 @@ jobs: experimental: true steps: -- uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3 +- uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 with: persist-credentials: false - uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index eab913b4..bf4709f0 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -40,7 +40,7 @@ jobs: steps: - name: "Checkout code" -uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3 +uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 with: persist-credentials: false
(commons-beanutils) branch dependabot/github_actions/actions/upload-artifact-4.3.3 deleted (was ce6e72ef)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/upload-artifact-4.3.3 in repository https://gitbox.apache.org/repos/asf/commons-beanutils.git was ce6e72ef Bump actions/upload-artifact from 4.3.2 to 4.3.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-beanutils) branch master updated: Bump actions/upload-artifact from 4.3.2 to 4.3.3 (#238)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-beanutils.git The following commit(s) were added to refs/heads/master by this push: new a1d53511 Bump actions/upload-artifact from 4.3.2 to 4.3.3 (#238) a1d53511 is described below commit a1d53511d98c6cfa1cd51cd0261db51d91b43070 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> AuthorDate: Fri Apr 26 22:42:13 2024 -0400 Bump actions/upload-artifact from 4.3.2 to 4.3.3 (#238) Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.2 to 4.3.3. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/1746f4ab65b179e0ea60a494b83293b640dd5bba...65462800fd760344b1a7b4382951275a0abb4808) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index c8c1ce90..eab913b4 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -57,7 +57,7 @@ jobs: publish_results: true - name: "Upload artifact" -uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2 +uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3 with: name: SARIF file path: results.sarif
(commons-validator) 01/01: Merge pull request #213 from apache/dependabot/github_actions/actions/checkout-4.1.4
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-validator.git commit 6af4029c5091be270df1140afe8a3cd488506c2b Merge: dc909d5e b5e2f90d Author: Gary Gregory AuthorDate: Fri Apr 26 22:41:40 2024 -0400 Merge pull request #213 from apache/dependabot/github_actions/actions/checkout-4.1.4 Bump actions/checkout from 4.1.3 to 4.1.4 .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/coverage.yml| 2 +- .github/workflows/maven.yml | 2 +- .github/workflows/scorecards-analysis.yml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-)
(commons-validator) branch master updated (dc909d5e -> 6af4029c)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-validator.git from dc909d5e Merge pull request #212 from apache/dependabot/github_actions/actions/upload-artifact-4.3.3 add b5e2f90d Bump actions/checkout from 4.1.3 to 4.1.4 new 6af4029c Merge pull request #213 from apache/dependabot/github_actions/actions/checkout-4.1.4 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/coverage.yml| 2 +- .github/workflows/maven.yml | 2 +- .github/workflows/scorecards-analysis.yml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-)
(commons-validator) branch dependabot/github_actions/actions/upload-artifact-4.3.3 deleted (was d25142c9)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/upload-artifact-4.3.3 in repository https://gitbox.apache.org/repos/asf/commons-validator.git was d25142c9 Bump actions/upload-artifact from 4.3.2 to 4.3.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-validator) 01/01: Merge pull request #212 from apache/dependabot/github_actions/actions/upload-artifact-4.3.3
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-validator.git commit dc909d5e246674670c778aec6399887887d4d70a Merge: 485480cb d25142c9 Author: Gary Gregory AuthorDate: Fri Apr 26 22:41:29 2024 -0400 Merge pull request #212 from apache/dependabot/github_actions/actions/upload-artifact-4.3.3 Bump actions/upload-artifact from 4.3.2 to 4.3.3 .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
(commons-validator) branch dependabot/github_actions/github/codeql-action-3.25.3 deleted (was 5979534e)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-3.25.3 in repository https://gitbox.apache.org/repos/asf/commons-validator.git was 5979534e Bump github/codeql-action from 3.25.1 to 3.25.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-validator) branch master updated (485480cb -> dc909d5e)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-validator.git from 485480cb Merge pull request #211 from apache/dependabot/github_actions/github/codeql-action-3.25.3 add d25142c9 Bump actions/upload-artifact from 4.3.2 to 4.3.3 new dc909d5e Merge pull request #212 from apache/dependabot/github_actions/actions/upload-artifact-4.3.3 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
(commons-validator) branch master updated (c3d7b4c2 -> 485480cb)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-validator.git from c3d7b4c2 Recent fixes add 5979534e Bump github/codeql-action from 3.25.1 to 3.25.3 add 485480cb Merge pull request #211 from apache/dependabot/github_actions/github/codeql-action-3.25.3 No new revisions were added by this update. Summary of changes: .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
(commons-beanutils) branch dependabot/github_actions/github/codeql-action-3.25.3 created (now ae6c376b)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/github/codeql-action-3.25.3 in repository https://gitbox.apache.org/repos/asf/commons-beanutils.git at ae6c376b Bump github/codeql-action from 3.25.1 to 3.25.3 No new revisions were added by this update.
(commons-beanutils) branch dependabot/github_actions/actions/checkout-4.1.4 created (now 1f11e9df)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/actions/checkout-4.1.4 in repository https://gitbox.apache.org/repos/asf/commons-beanutils.git at 1f11e9df Bump actions/checkout from 4.1.3 to 4.1.4 No new revisions were added by this update.
(commons-beanutils) branch dependabot/github_actions/actions/upload-artifact-4.3.3 created (now ce6e72ef)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/actions/upload-artifact-4.3.3 in repository https://gitbox.apache.org/repos/asf/commons-beanutils.git at ce6e72ef Bump actions/upload-artifact from 4.3.2 to 4.3.3 No new revisions were added by this update.
(commons-validator) branch dependabot/github_actions/actions/checkout-4.1.4 created (now b5e2f90d)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/actions/checkout-4.1.4 in repository https://gitbox.apache.org/repos/asf/commons-validator.git at b5e2f90d Bump actions/checkout from 4.1.3 to 4.1.4 No new revisions were added by this update.
(commons-validator) branch dependabot/github_actions/actions/upload-artifact-4.3.3 created (now d25142c9)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/actions/upload-artifact-4.3.3 in repository https://gitbox.apache.org/repos/asf/commons-validator.git at d25142c9 Bump actions/upload-artifact from 4.3.2 to 4.3.3 No new revisions were added by this update.
(commons-validator) branch dependabot/github_actions/github/codeql-action-3.25.3 created (now 5979534e)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/github/codeql-action-3.25.3 in repository https://gitbox.apache.org/repos/asf/commons-validator.git at 5979534e Bump github/codeql-action from 3.25.1 to 3.25.3 No new revisions were added by this update.
(commons-email) branch master updated (b7ada3a -> 05a5eeb)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-email.git from b7ada3a Merge pull request #244 from apache/dependabot/github_actions/actions/checkout-4.1.4 add 2cf40d9 Bump github/codeql-action from 3.25.1 to 3.25.3 new 05a5eeb Merge pull request #245 from apache/dependabot/github_actions/github/codeql-action-3.25.3 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
(commons-email) 01/01: Merge pull request #244 from apache/dependabot/github_actions/actions/checkout-4.1.4
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-email.git commit b7ada3ab23d786b12286e5dbe09c5f7083375d0b Merge: c54df53 a2891b0 Author: Gary Gregory AuthorDate: Fri Apr 26 17:05:21 2024 -0400 Merge pull request #244 from apache/dependabot/github_actions/actions/checkout-4.1.4 Bump actions/checkout from 4.1.3 to 4.1.4 .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/coverage.yml| 2 +- .github/workflows/maven.yml | 2 +- .github/workflows/scorecards-analysis.yml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-)
(commons-email) branch dependabot/github_actions/github/codeql-action-3.25.3 deleted (was 2cf40d9)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-3.25.3 in repository https://gitbox.apache.org/repos/asf/commons-email.git was 2cf40d9 Bump github/codeql-action from 3.25.1 to 3.25.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-email) 01/01: Merge pull request #245 from apache/dependabot/github_actions/github/codeql-action-3.25.3
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-email.git commit 05a5eebc8e5d79fb9218ec07ed02cd33f2167b07 Merge: b7ada3a 2cf40d9 Author: Gary Gregory AuthorDate: Fri Apr 26 17:05:31 2024 -0400 Merge pull request #245 from apache/dependabot/github_actions/github/codeql-action-3.25.3 Bump github/codeql-action from 3.25.1 to 3.25.3 .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
(commons-email) branch dependabot/github_actions/actions/checkout-4.1.4 deleted (was a2891b0)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/checkout-4.1.4 in repository https://gitbox.apache.org/repos/asf/commons-email.git was a2891b0 Bump actions/checkout from 4.1.3 to 4.1.4 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-email) branch master updated (c54df53 -> b7ada3a)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-email.git from c54df53 Merge pull request #243 from apache/dependabot/github_actions/actions/upload-artifact-4.3.3 add a2891b0 Bump actions/checkout from 4.1.3 to 4.1.4 new b7ada3a Merge pull request #244 from apache/dependabot/github_actions/actions/checkout-4.1.4 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/coverage.yml| 2 +- .github/workflows/maven.yml | 2 +- .github/workflows/scorecards-analysis.yml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-)
(commons-email) branch dependabot/github_actions/actions/upload-artifact-4.3.3 deleted (was 08cb58c)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/upload-artifact-4.3.3 in repository https://gitbox.apache.org/repos/asf/commons-email.git was 08cb58c Bump actions/upload-artifact from 4.3.2 to 4.3.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-email) branch master updated (58fcde5 -> c54df53)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-email.git from 58fcde5 Facilitate JMH benchmarking from the Maven CLI add 08cb58c Bump actions/upload-artifact from 4.3.2 to 4.3.3 add c54df53 Merge pull request #243 from apache/dependabot/github_actions/actions/upload-artifact-4.3.3 No new revisions were added by this update. Summary of changes: .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
(commons-text) branch master updated: Bump actions/upload-artifact from 4.3.2 to 4.3.3 (#536)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-text.git The following commit(s) were added to refs/heads/master by this push: new e43417d2 Bump actions/upload-artifact from 4.3.2 to 4.3.3 (#536) e43417d2 is described below commit e43417d2ee91e871086d5d44817cef4a0a9eecf3 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> AuthorDate: Fri Apr 26 17:04:28 2024 -0400 Bump actions/upload-artifact from 4.3.2 to 4.3.3 (#536) Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.2 to 4.3.3. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/1746f4ab65b179e0ea60a494b83293b640dd5bba...65462800fd760344b1a7b4382951275a0abb4808) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 6ebc09b3..61142437 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -57,7 +57,7 @@ jobs: publish_results: true - name: "Upload artifact" -uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # 4.3.2 +uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # 4.3.3 with: name: SARIF file path: results.sarif
(commons-text) branch dependabot/github_actions/actions/upload-artifact-4.3.3 deleted (was 9c2b0a28)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/upload-artifact-4.3.3 in repository https://gitbox.apache.org/repos/asf/commons-text.git was 9c2b0a28 Bump actions/upload-artifact from 4.3.2 to 4.3.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-text) branch dependabot/github_actions/actions/checkout-4.1.4 deleted (was 97d4e284)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/checkout-4.1.4 in repository https://gitbox.apache.org/repos/asf/commons-text.git was 97d4e284 Bump actions/checkout from 4.1.3 to 4.1.4 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-text) branch master updated: Bump actions/checkout from 4.1.3 to 4.1.4 (#535)
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-text.git
The following commit(s) were added to refs/heads/master by this push:
new 5a3932b0 Bump actions/checkout from 4.1.3 to 4.1.4 (#535)
5a3932b0 is described below
commit 5a3932b03eee9e9c9c3bca139c5b6a8a1d43d4a9
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Fri Apr 26 17:04:16 2024 -0400
Bump actions/checkout from 4.1.3 to 4.1.4 (#535)
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.3 to
4.1.4.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
-
[Commits](https://github.com/actions/checkout/compare/1d96c772d19495a3b5c517cd2bc0cb401ea0529f...0ad4b8fadaa221de15dcec353f45205ec38ea70b)
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
---
.github/workflows/codeql-analysis.yml | 2 +-
.github/workflows/coverage.yml| 2 +-
.github/workflows/maven.yml | 2 +-
.github/workflows/scorecards-analysis.yml | 2 +-
4 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/.github/workflows/codeql-analysis.yml
b/.github/workflows/codeql-analysis.yml
index 4d7a6581..e07a9d9d 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -45,7 +45,7 @@ jobs:
steps:
- name: Checkout repository
- uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+ uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
with:
persist-credentials: false
- uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2
diff --git a/.github/workflows/coverage.yml b/.github/workflows/coverage.yml
index 9d927a1c..ad7a7ec8 100644
--- a/.github/workflows/coverage.yml
+++ b/.github/workflows/coverage.yml
@@ -29,7 +29,7 @@ jobs:
java: [ 21 ]
steps:
-- uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+- uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
with:
persist-credentials: false
- uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2
diff --git a/.github/workflows/maven.yml b/.github/workflows/maven.yml
index 2caf91c4..9e6cf1f0 100644
--- a/.github/workflows/maven.yml
+++ b/.github/workflows/maven.yml
@@ -34,7 +34,7 @@ jobs:
experimental: true
steps:
-- uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+- uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
with:
persist-credentials: false
- name: Set up JDK ${{ matrix.java }}
diff --git a/.github/workflows/scorecards-analysis.yml
b/.github/workflows/scorecards-analysis.yml
index 6d097894..6ebc09b3 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -40,7 +40,7 @@ jobs:
steps:
- name: "Checkout code"
-uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f #
v4.1.3
+uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b #
v4.1.4
with:
persist-credentials: false
(commons-rdf) branch master updated (70185e5b -> 371a76c8)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-rdf.git from 70185e5b Merge pull request #221 from apache/dependabot/github_actions/actions/checkout-4.1.4 add 428392c1 Bump actions/upload-artifact from 4.3.2 to 4.3.3 new 371a76c8 Merge pull request #222 from apache/dependabot/github_actions/actions/upload-artifact-4.3.3 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
(commons-rdf) branch dependabot/github_actions/github/codeql-action-3.25.3 deleted (was 740d6ab2)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-3.25.3 in repository https://gitbox.apache.org/repos/asf/commons-rdf.git was 740d6ab2 Bump github/codeql-action from 3.25.1 to 3.25.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-rdf) branch master updated (3c0ebc9c -> 837b4f12)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-rdf.git from 3c0ebc9c Merge pull request #216 from apache/dependabot/github_actions/codecov/codecov-action-4.3.0 add 740d6ab2 Bump github/codeql-action from 3.25.1 to 3.25.3 new 837b4f12 Merge pull request #220 from apache/dependabot/github_actions/github/codeql-action-3.25.3 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
(commons-rdf) 01/01: Merge pull request #220 from apache/dependabot/github_actions/github/codeql-action-3.25.3
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-rdf.git commit 837b4f124a433eb68050d50287eeb362680a80da Merge: 3c0ebc9c 740d6ab2 Author: Gary Gregory AuthorDate: Fri Apr 26 17:03:00 2024 -0400 Merge pull request #220 from apache/dependabot/github_actions/github/codeql-action-3.25.3 Bump github/codeql-action from 3.25.1 to 3.25.3 .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
(commons-text) branch dependabot/github_actions/github/codeql-action-3.25.3 deleted (was e7427f5c)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-3.25.3 in repository https://gitbox.apache.org/repos/asf/commons-text.git was e7427f5c Bump github/codeql-action from 3.25.1 to 3.25.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-text) branch master updated: Bump github/codeql-action from 3.25.1 to 3.25.3 (#534)
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-text.git
The following commit(s) were added to refs/heads/master by this push:
new 6cc61283 Bump github/codeql-action from 3.25.1 to 3.25.3 (#534)
6cc61283 is described below
commit 6cc61283466175d72450b24c45e372822b35a1ad
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Fri Apr 26 17:04:04 2024 -0400
Bump github/codeql-action from 3.25.1 to 3.25.3 (#534)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from
3.25.1 to 3.25.3.
- [Release notes](https://github.com/github/codeql-action/releases)
-
[Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
-
[Commits](https://github.com/github/codeql-action/compare/c7f9125735019aa87cfc361530512d50ea439c71...d39d31e687223d841ef683f52467bd88e9b21c14)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
---
.github/workflows/codeql-analysis.yml | 6 +++---
.github/workflows/scorecards-analysis.yml | 2 +-
2 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/.github/workflows/codeql-analysis.yml
b/.github/workflows/codeql-analysis.yml
index d085e30e..4d7a6581 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -57,7 +57,7 @@ jobs:
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
- uses: github/codeql-action/init@c7f9125735019aa87cfc361530512d50ea439c71
# 3.25.1
+ uses: github/codeql-action/init@d39d31e687223d841ef683f52467bd88e9b21c14
# 3.25.3
with:
languages: ${{ matrix.language }}
# If you wish to specify custom queries, you can do so here or in a
config file.
@@ -68,7 +68,7 @@ jobs:
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
# If this step fails, then you should remove it and run the build manually
(see below)
- name: Autobuild
- uses:
github/codeql-action/autobuild@c7f9125735019aa87cfc361530512d50ea439c71#
3.25.1
+ uses:
github/codeql-action/autobuild@d39d31e687223d841ef683f52467bd88e9b21c14#
3.25.3
# ℹ️ Command-line programs to run using the OS shell.
# https://git.io/JvXDl
@@ -82,4 +82,4 @@ jobs:
# make release
- name: Perform CodeQL Analysis
- uses:
github/codeql-action/analyze@c7f9125735019aa87cfc361530512d50ea439c71#
3.25.1
+ uses:
github/codeql-action/analyze@d39d31e687223d841ef683f52467bd88e9b21c14#
3.25.3
diff --git a/.github/workflows/scorecards-analysis.yml
b/.github/workflows/scorecards-analysis.yml
index 28df47de..6d097894 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -64,6 +64,6 @@ jobs:
retention-days: 5
- name: "Upload to code-scanning"
-uses:
github/codeql-action/upload-sarif@c7f9125735019aa87cfc361530512d50ea439c71#
3.25.1
+uses:
github/codeql-action/upload-sarif@d39d31e687223d841ef683f52467bd88e9b21c14#
3.25.3
with:
sarif_file: results.sarif
(commons-rdf) branch dependabot/github_actions/actions/upload-artifact-4.3.3 deleted (was 428392c1)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/upload-artifact-4.3.3 in repository https://gitbox.apache.org/repos/asf/commons-rdf.git was 428392c1 Bump actions/upload-artifact from 4.3.2 to 4.3.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-rdf) 01/01: Merge pull request #222 from apache/dependabot/github_actions/actions/upload-artifact-4.3.3
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-rdf.git commit 371a76c83f5ced2286f6a10cf80216d85dc8b1d5 Merge: 70185e5b 428392c1 Author: Gary Gregory AuthorDate: Fri Apr 26 17:03:27 2024 -0400 Merge pull request #222 from apache/dependabot/github_actions/actions/upload-artifact-4.3.3 Bump actions/upload-artifact from 4.3.2 to 4.3.3 .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
(commons-rdf) branch dependabot/github_actions/actions/checkout-4.1.4 deleted (was 5bc36bd4)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/checkout-4.1.4 in repository https://gitbox.apache.org/repos/asf/commons-rdf.git was 5bc36bd4 Bump actions/checkout from 4.1.3 to 4.1.4 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-rdf) 01/01: Merge pull request #221 from apache/dependabot/github_actions/actions/checkout-4.1.4
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-rdf.git commit 70185e5b41a40141e9c9600466502ff9f1706c15 Merge: 837b4f12 5bc36bd4 Author: Gary Gregory AuthorDate: Fri Apr 26 17:03:14 2024 -0400 Merge pull request #221 from apache/dependabot/github_actions/actions/checkout-4.1.4 Bump actions/checkout from 4.1.3 to 4.1.4 .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/coverage.yml| 2 +- .github/workflows/maven.yml | 2 +- .github/workflows/scorecards-analysis.yml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-)
(commons-rdf) branch master updated (837b4f12 -> 70185e5b)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-rdf.git from 837b4f12 Merge pull request #220 from apache/dependabot/github_actions/github/codeql-action-3.25.3 add 5bc36bd4 Bump actions/checkout from 4.1.3 to 4.1.4 new 70185e5b Merge pull request #221 from apache/dependabot/github_actions/actions/checkout-4.1.4 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/coverage.yml| 2 +- .github/workflows/maven.yml | 2 +- .github/workflows/scorecards-analysis.yml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-)
(commons-bcel) branch dependabot/github_actions/actions/upload-artifact-4.3.3 deleted (was 7ee45339)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/upload-artifact-4.3.3 in repository https://gitbox.apache.org/repos/asf/commons-bcel.git was 7ee45339 Bump actions/upload-artifact from 4.3.2 to 4.3.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-bcel) branch master updated: Bump actions/upload-artifact from 4.3.2 to 4.3.3 (#307)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-bcel.git The following commit(s) were added to refs/heads/master by this push: new cdd1c5ec Bump actions/upload-artifact from 4.3.2 to 4.3.3 (#307) cdd1c5ec is described below commit cdd1c5ec0375ea35e142a500239d43d2b28d598b Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> AuthorDate: Fri Apr 26 17:02:22 2024 -0400 Bump actions/upload-artifact from 4.3.2 to 4.3.3 (#307) Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.2 to 4.3.3. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/1746f4ab65b179e0ea60a494b83293b640dd5bba...65462800fd760344b1a7b4382951275a0abb4808) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index defe570b..e7d0b2d8 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -57,7 +57,7 @@ jobs: publish_results: true - name: "Upload artifact" -uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2 +uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3 with: name: SARIF file path: results.sarif
(commons-bcel) branch dependabot/github_actions/actions/checkout-4.1.4 deleted (was 6176ecf6)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/checkout-4.1.4 in repository https://gitbox.apache.org/repos/asf/commons-bcel.git was 6176ecf6 Bump actions/checkout from 4.1.3 to 4.1.4 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-bcel) branch master updated: Bump actions/checkout from 4.1.3 to 4.1.4 (#306)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-bcel.git The following commit(s) were added to refs/heads/master by this push: new 0d8d4548 Bump actions/checkout from 4.1.3 to 4.1.4 (#306) 0d8d4548 is described below commit 0d8d454875313342a6d97441d78e11839057c3cf Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> AuthorDate: Fri Apr 26 17:02:11 2024 -0400 Bump actions/checkout from 4.1.3 to 4.1.4 (#306) Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.3 to 4.1.4. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/1d96c772d19495a3b5c517cd2bc0cb401ea0529f...0ad4b8fadaa221de15dcec353f45205ec38ea70b) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/coverage.yml| 2 +- .github/workflows/maven.yml | 2 +- .github/workflows/scorecards-analysis.yml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 12244737..0a7a3cfe 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -45,7 +45,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3 + uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 with: persist-credentials: false - uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 diff --git a/.github/workflows/coverage.yml b/.github/workflows/coverage.yml index ef257b75..7670689d 100644 --- a/.github/workflows/coverage.yml +++ b/.github/workflows/coverage.yml @@ -29,7 +29,7 @@ jobs: java: [ 8, 11 ] steps: -- uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3 +- uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 with: persist-credentials: false - uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 diff --git a/.github/workflows/maven.yml b/.github/workflows/maven.yml index 4668367a..ea3bdbf9 100644 --- a/.github/workflows/maven.yml +++ b/.github/workflows/maven.yml @@ -45,7 +45,7 @@ jobs: steps: - name: Prepare git run: git config --global core.autocrlf false -- uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3 +- uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 with: persist-credentials: false - uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 6e46f25a..defe570b 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -40,7 +40,7 @@ jobs: steps: - name: "Checkout code" -uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3 +uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 with: persist-credentials: false
(commons-bcel) branch dependabot/github_actions/github/codeql-action-3.25.3 deleted (was 0a26e11a)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-3.25.3 in repository https://gitbox.apache.org/repos/asf/commons-bcel.git was 0a26e11a Bump github/codeql-action from 3.25.1 to 3.25.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-bcel) branch master updated: Bump github/codeql-action from 3.25.1 to 3.25.3 (#305)
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-bcel.git
The following commit(s) were added to refs/heads/master by this push:
new 77353bb0 Bump github/codeql-action from 3.25.1 to 3.25.3 (#305)
77353bb0 is described below
commit 77353bb0344a8d98a5b8f6ccb2704823417acd0d
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Fri Apr 26 17:01:56 2024 -0400
Bump github/codeql-action from 3.25.1 to 3.25.3 (#305)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from
3.25.1 to 3.25.3.
- [Release notes](https://github.com/github/codeql-action/releases)
-
[Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
-
[Commits](https://github.com/github/codeql-action/compare/c7f9125735019aa87cfc361530512d50ea439c71...d39d31e687223d841ef683f52467bd88e9b21c14)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
---
.github/workflows/codeql-analysis.yml | 6 +++---
.github/workflows/scorecards-analysis.yml | 2 +-
2 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/.github/workflows/codeql-analysis.yml
b/.github/workflows/codeql-analysis.yml
index 0a59457f..12244737 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -57,7 +57,7 @@ jobs:
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
- uses: github/codeql-action/init@c7f9125735019aa87cfc361530512d50ea439c71
# v3.25.1
+ uses: github/codeql-action/init@d39d31e687223d841ef683f52467bd88e9b21c14
# v3.25.3
with:
languages: ${{ matrix.language }}
# If you wish to specify custom queries, you can do so here or in a
config file.
@@ -68,7 +68,7 @@ jobs:
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
# If this step fails, then you should remove it and run the build manually
(see below)
- name: Autobuild
- uses:
github/codeql-action/autobuild@c7f9125735019aa87cfc361530512d50ea439c71 #
v3.25.1
+ uses:
github/codeql-action/autobuild@d39d31e687223d841ef683f52467bd88e9b21c14 #
v3.25.3
# ℹ️ Command-line programs to run using the OS shell.
# https://git.io/JvXDl
@@ -82,4 +82,4 @@ jobs:
# make release
- name: Perform CodeQL Analysis
- uses:
github/codeql-action/analyze@c7f9125735019aa87cfc361530512d50ea439c71 # v3.25.1
+ uses:
github/codeql-action/analyze@d39d31e687223d841ef683f52467bd88e9b21c14 # v3.25.3
diff --git a/.github/workflows/scorecards-analysis.yml
b/.github/workflows/scorecards-analysis.yml
index b398ee59..6e46f25a 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -64,6 +64,6 @@ jobs:
retention-days: 5
- name: "Upload to code-scanning"
-uses:
github/codeql-action/upload-sarif@c7f9125735019aa87cfc361530512d50ea439c71#
3.25.1
+uses:
github/codeql-action/upload-sarif@d39d31e687223d841ef683f52467bd88e9b21c14#
3.25.3
with:
sarif_file: results.sarif
(commons-bcel) branch master updated: Use macos-13 for Java 8
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-bcel.git
The following commit(s) were added to refs/heads/master by this push:
new a1b01430 Use macos-13 for Java 8
a1b01430 is described below
commit a1b01430eb18e96a6e28af491d8d287c4e16d5c7
Author: Gary Gregory
AuthorDate: Fri Apr 26 17:01:42 2024 -0400
Use macos-13 for Java 8
---
.github/workflows/maven.yml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/.github/workflows/maven.yml b/.github/workflows/maven.yml
index fd54b482..4668367a 100644
--- a/.github/workflows/maven.yml
+++ b/.github/workflows/maven.yml
@@ -27,7 +27,7 @@ jobs:
continue-on-error: ${{ matrix.experimental }}
strategy:
matrix:
-os: [ubuntu-latest, windows-latest, macos-latest]
+os: [ubuntu-latest, windows-latest, macos-13]
java: [ 8, 11, 17, 21 ]
experimental: [false]
#include:
(commons-email) branch dependabot/github_actions/actions/checkout-4.1.4 created (now a2891b0)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/actions/checkout-4.1.4 in repository https://gitbox.apache.org/repos/asf/commons-email.git at a2891b0 Bump actions/checkout from 4.1.3 to 4.1.4 No new revisions were added by this update.
(commons-email) branch dependabot/github_actions/github/codeql-action-3.25.3 created (now 2cf40d9)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/github/codeql-action-3.25.3 in repository https://gitbox.apache.org/repos/asf/commons-email.git at 2cf40d9 Bump github/codeql-action from 3.25.1 to 3.25.3 No new revisions were added by this update.
(commons-email) branch dependabot/github_actions/actions/upload-artifact-4.3.3 created (now 08cb58c)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/actions/upload-artifact-4.3.3 in repository https://gitbox.apache.org/repos/asf/commons-email.git at 08cb58c Bump actions/upload-artifact from 4.3.2 to 4.3.3 No new revisions were added by this update.
(commons-text) branch dependabot/github_actions/actions/checkout-4.1.4 created (now 97d4e284)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/actions/checkout-4.1.4 in repository https://gitbox.apache.org/repos/asf/commons-text.git at 97d4e284 Bump actions/checkout from 4.1.3 to 4.1.4 No new revisions were added by this update.
(commons-text) branch dependabot/github_actions/actions/upload-artifact-4.3.3 created (now 9c2b0a28)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/actions/upload-artifact-4.3.3 in repository https://gitbox.apache.org/repos/asf/commons-text.git at 9c2b0a28 Bump actions/upload-artifact from 4.3.2 to 4.3.3 No new revisions were added by this update.
(commons-text) branch dependabot/github_actions/github/codeql-action-3.25.3 created (now e7427f5c)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/github/codeql-action-3.25.3 in repository https://gitbox.apache.org/repos/asf/commons-text.git at e7427f5c Bump github/codeql-action from 3.25.1 to 3.25.3 No new revisions were added by this update.
(commons-rdf) branch dependabot/github_actions/actions/upload-artifact-4.3.3 created (now 428392c1)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/actions/upload-artifact-4.3.3 in repository https://gitbox.apache.org/repos/asf/commons-rdf.git at 428392c1 Bump actions/upload-artifact from 4.3.2 to 4.3.3 No new revisions were added by this update.
(commons-rdf) branch dependabot/github_actions/actions/checkout-4.1.4 created (now 5bc36bd4)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/actions/checkout-4.1.4 in repository https://gitbox.apache.org/repos/asf/commons-rdf.git at 5bc36bd4 Bump actions/checkout from 4.1.3 to 4.1.4 No new revisions were added by this update.
(commons-rdf) branch dependabot/github_actions/github/codeql-action-3.25.3 created (now 740d6ab2)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/github/codeql-action-3.25.3 in repository https://gitbox.apache.org/repos/asf/commons-rdf.git at 740d6ab2 Bump github/codeql-action from 3.25.1 to 3.25.3 No new revisions were added by this update.
(commons-bcel) branch dependabot/github_actions/actions/upload-artifact-4.3.3 created (now 7ee45339)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/actions/upload-artifact-4.3.3 in repository https://gitbox.apache.org/repos/asf/commons-bcel.git at 7ee45339 Bump actions/upload-artifact from 4.3.2 to 4.3.3 No new revisions were added by this update.
(commons-bcel) branch dependabot/github_actions/actions/checkout-4.1.4 created (now 6176ecf6)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/actions/checkout-4.1.4 in repository https://gitbox.apache.org/repos/asf/commons-bcel.git at 6176ecf6 Bump actions/checkout from 4.1.3 to 4.1.4 No new revisions were added by this update.
(commons-bcel) branch dependabot/github_actions/github/codeql-action-3.25.3 created (now 0a26e11a)
This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/github_actions/github/codeql-action-3.25.3 in repository https://gitbox.apache.org/repos/asf/commons-bcel.git at 0a26e11a Bump github/codeql-action from 3.25.1 to 3.25.3 No new revisions were added by this update.
(commons-compress) 01/02: Make private instance variable final
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-compress.git
commit 364b563a222d06eae650e4395098f4b7c089cd66
Author: Gary Gregory
AuthorDate: Fri Apr 26 12:56:15 2024 -0400
Make private instance variable final
---
.../java/org/apache/commons/compress/harmony/unpack200/Archive.java| 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
diff --git
a/src/main/java/org/apache/commons/compress/harmony/unpack200/Archive.java
b/src/main/java/org/apache/commons/compress/harmony/unpack200/Archive.java
index 7e292c86d..1a80c978f 100644
--- a/src/main/java/org/apache/commons/compress/harmony/unpack200/Archive.java
+++ b/src/main/java/org/apache/commons/compress/harmony/unpack200/Archive.java
@@ -62,7 +62,7 @@ public class Archive {
private final long inputSize;
-private String outputFileName;
+private final String outputFileName;
/**
* Creates an Archive with streams for the input and output files. Note:
If you use this method then calling {@link #setRemovePackFile(boolean)} will
have
@@ -80,6 +80,7 @@ public class Archive {
} else {
inputPath = null;
}
+this.outputFileName = null;
this.inputSize = -1;
}
(commons-compress) 02/02: unpack200.Archive.unpack() should not close streams it does not own
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-compress.git
commit 810db5ae7ca6981c110dd13188a58a1c0cd29a5d
Author: Gary Gregory
AuthorDate: Fri Apr 26 14:57:48 2024 -0400
unpack200.Archive.unpack() should not close streams it does not own
- org.apache.commons.compress.harmony.unpack200.Archive.unpack() should
not close streams it does not own (when constructed from
Archive(InputStream, JarOutputStream))
- Use try-with-resources
- Less side-effects in tests
---
src/changes/changes.xml| 1 +
.../pack200/Pack200CompressorInputStream.java | 7 +-
.../compress/harmony/unpack200/Archive.java| 10 +-
.../compress/harmony/unpack200/ArchiveTest.java| 194 ++---
4 files changed, 105 insertions(+), 107 deletions(-)
diff --git a/src/changes/changes.xml b/src/changes/changes.xml
index 814d004bf..f10980e24 100644
--- a/src/changes/changes.xml
+++ b/src/changes/changes.xml
@@ -51,6 +51,7 @@ The type attribute can be add,update,fix,remove.
OSGi: Remove unresolvable dependencies in manifest and make the
commons-io packages really optional.
Avoid possible
NullPointerException in
org.apache.commons.compress.utils.Sets.newHashSet(E...).
ZipArchiveOutputStream.setEncoding(String) with a null
value throws IllegalArgumentException.
+ org.apache.commons.compress.harmony.unpack200.Archive.unpack() should
not close streams it does not own (when constructed from Archive(InputStream,
JarOutputStream)).
Bump org.apache.commons:commons-parent from 66 to 69 #495,
#508.
Bump org.ow2.asm:asm from 9.6 to 9.7 #504.
diff --git
a/src/main/java/org/apache/commons/compress/compressors/pack200/Pack200CompressorInputStream.java
b/src/main/java/org/apache/commons/compress/compressors/pack200/Pack200CompressorInputStream.java
index 758029400..b64458aba 100644
---
a/src/main/java/org/apache/commons/compress/compressors/pack200/Pack200CompressorInputStream.java
+++
b/src/main/java/org/apache/commons/compress/compressors/pack200/Pack200CompressorInputStream.java
@@ -28,7 +28,6 @@ import java.util.jar.JarOutputStream;
import org.apache.commons.compress.compressors.CompressorInputStream;
import org.apache.commons.compress.java.util.jar.Pack200;
-import org.apache.commons.io.input.CloseShieldInputStream;
/**
* An input stream that decompresses from the Pack200 format to be read as any
other stream.
@@ -138,11 +137,7 @@ public class Pack200CompressorInputStream extends
CompressorInputStream {
unpacker.properties().putAll(properties);
}
if (file == null) {
-// unpack would close this stream but we want to give the call
site more control
-// TODO unpack should not close its given stream.
-try (CloseShieldInputStream closeShield =
CloseShieldInputStream.wrap(inputStream)) {
-unpacker.unpack(closeShield, jarOut);
-}
+unpacker.unpack(inputStream, jarOut);
} else {
unpacker.unpack(file, jarOut);
}
diff --git
a/src/main/java/org/apache/commons/compress/harmony/unpack200/Archive.java
b/src/main/java/org/apache/commons/compress/harmony/unpack200/Archive.java
index 1a80c978f..d134a656d 100644
--- a/src/main/java/org/apache/commons/compress/harmony/unpack200/Archive.java
+++ b/src/main/java/org/apache/commons/compress/harmony/unpack200/Archive.java
@@ -64,6 +64,8 @@ public class Archive {
private final String outputFileName;
+private final boolean closeStreams;
+
/**
* Creates an Archive with streams for the input and output files. Note:
If you use this method then calling {@link #setRemovePackFile(boolean)} will
have
* no effect.
@@ -82,6 +84,7 @@ public class Archive {
}
this.outputFileName = null;
this.inputSize = -1;
+this.closeStreams = false;
}
/**
@@ -99,6 +102,7 @@ public class Archive {
this.inputStream = new
BoundedInputStream(Files.newInputStream(inputPath), inputSize);
this.outputStream = new JarOutputStream(new BufferedOutputStream(new
FileOutputStream(outputFileName)));
this.outputFileName = outputFileName;
+this.closeStreams = true;
}
private boolean available(final InputStream inputStream) throws
IOException {
@@ -214,8 +218,10 @@ public class Archive {
}
}
} finally {
-IOUtils.closeQuietly(inputStream);
-IOUtils.closeQuietly(outputStream);
+if (closeStreams) {
+IOUtils.closeQuietly(inputStream);
+IOUtils.closeQuietly(outputStream);
+}
IOUtils.closeQuietly(logFile);
}
if (removePackFile && inputPath
(commons-compress) branch master updated (ca4760dad -> 810db5ae7)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-compress.git from ca4760dad [COMPRESS-675] Regression in pack200's Archive class -- underlying InputStream is now closed new 364b563a2 Make private instance variable final new 810db5ae7 unpack200.Archive.unpack() should not close streams it does not own The 2 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: src/changes/changes.xml| 1 + .../pack200/Pack200CompressorInputStream.java | 7 +- .../compress/harmony/unpack200/Archive.java| 13 +- .../compress/harmony/unpack200/ArchiveTest.java| 194 ++--- 4 files changed, 107 insertions(+), 108 deletions(-)
(commons-fileupload) branch dependabot/github_actions/github/codeql-action-3.25.3 deleted (was c12d309f)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-3.25.3 in repository https://gitbox.apache.org/repos/asf/commons-fileupload.git was c12d309f Bump github/codeql-action from 3.25.1 to 3.25.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-fileupload) branch master updated: Bump github/codeql-action from 3.25.1 to 3.25.3 (#304)
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-fileupload.git
The following commit(s) were added to refs/heads/master by this push:
new 5f2f8d62 Bump github/codeql-action from 3.25.1 to 3.25.3 (#304)
5f2f8d62 is described below
commit 5f2f8d629a480354779afacefe4f592ab4a93ff6
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Fri Apr 26 14:47:06 2024 -0400
Bump github/codeql-action from 3.25.1 to 3.25.3 (#304)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from
3.25.1 to 3.25.3.
- [Release notes](https://github.com/github/codeql-action/releases)
-
[Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
-
[Commits](https://github.com/github/codeql-action/compare/c7f9125735019aa87cfc361530512d50ea439c71...d39d31e687223d841ef683f52467bd88e9b21c14)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
---
.github/workflows/codeql-analysis.yml | 6 +++---
.github/workflows/scorecards-analysis.yml | 2 +-
2 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/.github/workflows/codeql-analysis.yml
b/.github/workflows/codeql-analysis.yml
index 76cc7253..e07a9d9d 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -57,7 +57,7 @@ jobs:
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
- uses: github/codeql-action/init@c7f9125735019aa87cfc361530512d50ea439c71
# 3.25.1
+ uses: github/codeql-action/init@d39d31e687223d841ef683f52467bd88e9b21c14
# 3.25.3
with:
languages: ${{ matrix.language }}
# If you wish to specify custom queries, you can do so here or in a
config file.
@@ -68,7 +68,7 @@ jobs:
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
# If this step fails, then you should remove it and run the build manually
(see below)
- name: Autobuild
- uses:
github/codeql-action/autobuild@c7f9125735019aa87cfc361530512d50ea439c71#
3.25.1
+ uses:
github/codeql-action/autobuild@d39d31e687223d841ef683f52467bd88e9b21c14#
3.25.3
# ℹ️ Command-line programs to run using the OS shell.
# https://git.io/JvXDl
@@ -82,4 +82,4 @@ jobs:
# make release
- name: Perform CodeQL Analysis
- uses:
github/codeql-action/analyze@c7f9125735019aa87cfc361530512d50ea439c71#
3.25.1
+ uses:
github/codeql-action/analyze@d39d31e687223d841ef683f52467bd88e9b21c14#
3.25.3
diff --git a/.github/workflows/scorecards-analysis.yml
b/.github/workflows/scorecards-analysis.yml
index 64f7e292..61142437 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -64,6 +64,6 @@ jobs:
retention-days: 5
- name: "Upload to code-scanning"
-uses:
github/codeql-action/upload-sarif@c7f9125735019aa87cfc361530512d50ea439c71#
3.25.1
+uses:
github/codeql-action/upload-sarif@d39d31e687223d841ef683f52467bd88e9b21c14#
3.25.3
with:
sarif_file: results.sarif
(commons-fileupload) branch dependabot/github_actions/actions/checkout-4.1.4 deleted (was 2e0d92f1)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/checkout-4.1.4 in repository https://gitbox.apache.org/repos/asf/commons-fileupload.git was 2e0d92f1 Bump actions/checkout from 4.1.3 to 4.1.4 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-fileupload) branch master updated (98482014 -> 787b6c88)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-fileupload.git from 98482014 Bump actions/upload-artifact from 4.3.2 to 4.3.3 (#302) add 787b6c88 Bump actions/checkout from 4.1.3 to 4.1.4 (#303) No new revisions were added by this update. Summary of changes: .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/coverage.yml| 2 +- .github/workflows/maven.yml | 2 +- .github/workflows/scorecards-analysis.yml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-)
(commons-fileupload) branch dependabot/github_actions/actions/upload-artifact-4.3.3 deleted (was f09d195b)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/upload-artifact-4.3.3 in repository https://gitbox.apache.org/repos/asf/commons-fileupload.git was f09d195b Bump actions/upload-artifact from 4.3.2 to 4.3.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-fileupload) branch master updated: Bump actions/upload-artifact from 4.3.2 to 4.3.3 (#302)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-fileupload.git The following commit(s) were added to refs/heads/master by this push: new 98482014 Bump actions/upload-artifact from 4.3.2 to 4.3.3 (#302) 98482014 is described below commit 98482014a91f489b6de360ab3b2c81a0fa773b3a Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> AuthorDate: Fri Apr 26 14:46:45 2024 -0400 Bump actions/upload-artifact from 4.3.2 to 4.3.3 (#302) Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.2 to 4.3.3. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/1746f4ab65b179e0ea60a494b83293b640dd5bba...65462800fd760344b1a7b4382951275a0abb4808) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 28df47de..f6022fee 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -57,7 +57,7 @@ jobs: publish_results: true - name: "Upload artifact" -uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # 4.3.2 +uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # 4.3.3 with: name: SARIF file path: results.sarif
(commons-configuration) branch master updated: Bump actions/checkout from 4.1.3 to 4.1.4 (#411)
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-configuration.git
The following commit(s) were added to refs/heads/master by this push:
new 3bb8ca36 Bump actions/checkout from 4.1.3 to 4.1.4 (#411)
3bb8ca36 is described below
commit 3bb8ca36d260672e14739a539a9765d0c89ba798
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Fri Apr 26 14:45:33 2024 -0400
Bump actions/checkout from 4.1.3 to 4.1.4 (#411)
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.3 to
4.1.4.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
-
[Commits](https://github.com/actions/checkout/compare/1d96c772d19495a3b5c517cd2bc0cb401ea0529f...0ad4b8fadaa221de15dcec353f45205ec38ea70b)
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
---
.github/workflows/codeql-analysis.yml | 2 +-
.github/workflows/coverage.yml| 2 +-
.github/workflows/maven.yml | 2 +-
.github/workflows/scorecards-analysis.yml | 2 +-
4 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/.github/workflows/codeql-analysis.yml
b/.github/workflows/codeql-analysis.yml
index 12244737..0a7a3cfe 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -45,7 +45,7 @@ jobs:
steps:
- name: Checkout repository
- uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+ uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
with:
persist-credentials: false
- uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2
diff --git a/.github/workflows/coverage.yml b/.github/workflows/coverage.yml
index 83837aca..78b0b383 100644
--- a/.github/workflows/coverage.yml
+++ b/.github/workflows/coverage.yml
@@ -29,7 +29,7 @@ jobs:
java: [ 8 ]
steps:
-- uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+- uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
with:
persist-credentials: false
- name: Set up JDK ${{ matrix.java }}
diff --git a/.github/workflows/maven.yml b/.github/workflows/maven.yml
index 7671ebbb..be7157c4 100644
--- a/.github/workflows/maven.yml
+++ b/.github/workflows/maven.yml
@@ -34,7 +34,7 @@ jobs:
#experimental: true
steps:
-- uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+- uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
with:
persist-credentials: false
- name: Set up JDK ${{ matrix.java }}
diff --git a/.github/workflows/scorecards-analysis.yml
b/.github/workflows/scorecards-analysis.yml
index 009f6e2c..89281d6c 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -39,7 +39,7 @@ jobs:
steps:
- name: "Checkout code"
-uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f #
v4.1.3
+uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b #
v4.1.4
with:
persist-credentials: false
(commons-configuration) branch dependabot/github_actions/actions/checkout-4.1.4 deleted (was 4d93d77f)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/checkout-4.1.4 in repository https://gitbox.apache.org/repos/asf/commons-configuration.git was 4d93d77f Bump actions/checkout from 4.1.3 to 4.1.4 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-configuration) branch dependabot/github_actions/actions/upload-artifact-4.3.3 deleted (was 82527af5)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/upload-artifact-4.3.3 in repository https://gitbox.apache.org/repos/asf/commons-configuration.git was 82527af5 Bump actions/upload-artifact from 4.3.2 to 4.3.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-configuration) branch master updated: Bump actions/upload-artifact from 4.3.2 to 4.3.3 (#410)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-configuration.git The following commit(s) were added to refs/heads/master by this push: new 20bc4ae5 Bump actions/upload-artifact from 4.3.2 to 4.3.3 (#410) 20bc4ae5 is described below commit 20bc4ae5c84f66ab388f4348bf1414ce0e44aff6 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> AuthorDate: Fri Apr 26 14:45:23 2024 -0400 Bump actions/upload-artifact from 4.3.2 to 4.3.3 (#410) Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.2 to 4.3.3. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/1746f4ab65b179e0ea60a494b83293b640dd5bba...65462800fd760344b1a7b4382951275a0abb4808) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 896d3159..009f6e2c 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -56,7 +56,7 @@ jobs: publish_results: true - name: "Upload artifact" -uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2 +uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3 with: name: SARIF file path: results.sarif
(commons-configuration) branch master updated: Bump github/codeql-action from 3.25.1 to 3.25.3 (#409)
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-configuration.git
The following commit(s) were added to refs/heads/master by this push:
new a4ab0761 Bump github/codeql-action from 3.25.1 to 3.25.3 (#409)
a4ab0761 is described below
commit a4ab076138c509e164fd4ca9df3cba1168581587
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Fri Apr 26 14:45:12 2024 -0400
Bump github/codeql-action from 3.25.1 to 3.25.3 (#409)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from
3.25.1 to 3.25.3.
- [Release notes](https://github.com/github/codeql-action/releases)
-
[Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
-
[Commits](https://github.com/github/codeql-action/compare/c7f9125735019aa87cfc361530512d50ea439c71...d39d31e687223d841ef683f52467bd88e9b21c14)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
---
.github/workflows/codeql-analysis.yml | 6 +++---
.github/workflows/scorecards-analysis.yml | 2 +-
2 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/.github/workflows/codeql-analysis.yml
b/.github/workflows/codeql-analysis.yml
index 0a59457f..12244737 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -57,7 +57,7 @@ jobs:
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
- uses: github/codeql-action/init@c7f9125735019aa87cfc361530512d50ea439c71
# v3.25.1
+ uses: github/codeql-action/init@d39d31e687223d841ef683f52467bd88e9b21c14
# v3.25.3
with:
languages: ${{ matrix.language }}
# If you wish to specify custom queries, you can do so here or in a
config file.
@@ -68,7 +68,7 @@ jobs:
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
# If this step fails, then you should remove it and run the build manually
(see below)
- name: Autobuild
- uses:
github/codeql-action/autobuild@c7f9125735019aa87cfc361530512d50ea439c71 #
v3.25.1
+ uses:
github/codeql-action/autobuild@d39d31e687223d841ef683f52467bd88e9b21c14 #
v3.25.3
# ℹ️ Command-line programs to run using the OS shell.
# https://git.io/JvXDl
@@ -82,4 +82,4 @@ jobs:
# make release
- name: Perform CodeQL Analysis
- uses:
github/codeql-action/analyze@c7f9125735019aa87cfc361530512d50ea439c71 # v3.25.1
+ uses:
github/codeql-action/analyze@d39d31e687223d841ef683f52467bd88e9b21c14 # v3.25.3
diff --git a/.github/workflows/scorecards-analysis.yml
b/.github/workflows/scorecards-analysis.yml
index 55458a18..896d3159 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -63,6 +63,6 @@ jobs:
retention-days: 5
- name: "Upload to code-scanning"
-uses:
github/codeql-action/upload-sarif@c7f9125735019aa87cfc361530512d50ea439c71#
3.25.1
+uses:
github/codeql-action/upload-sarif@d39d31e687223d841ef683f52467bd88e9b21c14#
3.25.3
with:
sarif_file: results.sarif
(commons-configuration) branch dependabot/github_actions/github/codeql-action-3.25.3 deleted (was 905fcd42)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-3.25.3 in repository https://gitbox.apache.org/repos/asf/commons-configuration.git was 905fcd42 Bump github/codeql-action from 3.25.1 to 3.25.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-jxpath) branch dependabot/github_actions/actions/upload-artifact-4.3.3 deleted (was 3831125)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/upload-artifact-4.3.3 in repository https://gitbox.apache.org/repos/asf/commons-jxpath.git was 3831125 Bump actions/upload-artifact from 4.3.2 to 4.3.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-jxpath) 01/01: Merge pull request #141 from apache/dependabot/github_actions/actions/upload-artifact-4.3.3
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-jxpath.git commit 3aa0c95df8810adb3813d3ffbbcd0472ccce4a2d Merge: ccee9cd 3831125 Author: Gary Gregory AuthorDate: Fri Apr 26 14:42:45 2024 -0400 Merge pull request #141 from apache/dependabot/github_actions/actions/upload-artifact-4.3.3 Bump actions/upload-artifact from 4.3.2 to 4.3.3 .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
(commons-jxpath) branch master updated (ccee9cd -> 3aa0c95)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-jxpath.git from ccee9cd Merge pull request #140 from apache/dependabot/github_actions/actions/checkout-4.1.4 add 3831125 Bump actions/upload-artifact from 4.3.2 to 4.3.3 new 3aa0c95 Merge pull request #141 from apache/dependabot/github_actions/actions/upload-artifact-4.3.3 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
(commons-jxpath) branch dependabot/github_actions/actions/checkout-4.1.4 deleted (was 687f2a2)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/checkout-4.1.4 in repository https://gitbox.apache.org/repos/asf/commons-jxpath.git was 687f2a2 Bump actions/checkout from 4.1.3 to 4.1.4 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-jxpath) branch master updated (64dea6c -> ccee9cd)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-jxpath.git from 64dea6c Merge pull request #139 from apache/dependabot/github_actions/github/codeql-action-3.25.3 add 687f2a2 Bump actions/checkout from 4.1.3 to 4.1.4 new ccee9cd Merge pull request #140 from apache/dependabot/github_actions/actions/checkout-4.1.4 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/coverage.yml| 2 +- .github/workflows/maven.yml | 2 +- .github/workflows/scorecards-analysis.yml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-)
(commons-jxpath) 01/01: Merge pull request #140 from apache/dependabot/github_actions/actions/checkout-4.1.4
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-jxpath.git commit ccee9cd61b49590ccb691ea35ad40ea918b2190d Merge: 64dea6c 687f2a2 Author: Gary Gregory AuthorDate: Fri Apr 26 14:42:33 2024 -0400 Merge pull request #140 from apache/dependabot/github_actions/actions/checkout-4.1.4 Bump actions/checkout from 4.1.3 to 4.1.4 .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/coverage.yml| 2 +- .github/workflows/maven.yml | 2 +- .github/workflows/scorecards-analysis.yml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-)
(commons-jxpath) branch dependabot/github_actions/github/codeql-action-3.25.3 deleted (was 0a151e1)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-3.25.3 in repository https://gitbox.apache.org/repos/asf/commons-jxpath.git was 0a151e1 Bump github/codeql-action from 3.25.1 to 3.25.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-jxpath) branch master updated (8016ed1 -> 64dea6c)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-jxpath.git from 8016ed1 Use macos-13 for Java 8 add 0a151e1 Bump github/codeql-action from 3.25.1 to 3.25.3 new 64dea6c Merge pull request #139 from apache/dependabot/github_actions/github/codeql-action-3.25.3 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
(commons-jxpath) 01/01: Merge pull request #139 from apache/dependabot/github_actions/github/codeql-action-3.25.3
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-jxpath.git commit 64dea6c50c53ee762853982242cb6527ed8bf34e Merge: 8016ed1 0a151e1 Author: Gary Gregory AuthorDate: Fri Apr 26 14:42:21 2024 -0400 Merge pull request #139 from apache/dependabot/github_actions/github/codeql-action-3.25.3 Bump github/codeql-action from 3.25.1 to 3.25.3 .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
(commons-jxpath) branch master updated: Use macos-13 for Java 8
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-jxpath.git
The following commit(s) were added to refs/heads/master by this push:
new 8016ed1 Use macos-13 for Java 8
8016ed1 is described below
commit 8016ed14df6261713e0858f3442c954af8381fc1
Author: Gary Gregory
AuthorDate: Fri Apr 26 14:42:08 2024 -0400
Use macos-13 for Java 8
---
.github/workflows/maven.yml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/.github/workflows/maven.yml b/.github/workflows/maven.yml
index edb3e14..c6089c1 100644
--- a/.github/workflows/maven.yml
+++ b/.github/workflows/maven.yml
@@ -27,7 +27,7 @@ jobs:
continue-on-error: ${{ matrix.experimental }}
strategy:
matrix:
-os: [ubuntu-latest, windows-latest, macos-latest]
+os: [ubuntu-latest, windows-latest, macos-13]
java: [ 8, 11, 17, 21 ]
experimental: [false]
#include:
(commons-imaging) 01/01: Merge pull request #392 from apache/dependabot/github_actions/actions/upload-artifact-4.3.3
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-imaging.git commit 069ff830dc781a65e6369f2b727ffdaf1b68166f Merge: 40411b6f 8453134c Author: Gary Gregory AuthorDate: Fri Apr 26 14:40:53 2024 -0400 Merge pull request #392 from apache/dependabot/github_actions/actions/upload-artifact-4.3.3 Bump actions/upload-artifact from 4.3.1 to 4.3.3 .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
(commons-imaging) 01/01: Merge pull request #391 from apache/dependabot/github_actions/actions/checkout-4.1.4
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-imaging.git commit 40411b6f2ee87e07af8094026b9c7d977fc3e0ca Merge: 1abc04d4 b44877e1 Author: Gary Gregory AuthorDate: Fri Apr 26 14:40:40 2024 -0400 Merge pull request #391 from apache/dependabot/github_actions/actions/checkout-4.1.4 Bump actions/checkout from 4.1.3 to 4.1.4 .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/coverage.yml| 2 +- .github/workflows/maven.yml | 2 +- .github/workflows/scorecards-analysis.yml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-)
(commons-imaging) branch master updated (5671c6bc -> 1abc04d4)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-imaging.git from 5671c6bc Use macos-13 for Java 8 add bb33b1d5 Bump github/codeql-action from 3.25.1 to 3.25.3 add 1abc04d4 Merge pull request #390 from apache/dependabot/github_actions/github/codeql-action-3.25.3 No new revisions were added by this update. Summary of changes: .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/scorecards-analysis.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-)
(commons-imaging) branch dependabot/github_actions/actions/upload-artifact-4.3.3 deleted (was 8453134c)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/upload-artifact-4.3.3 in repository https://gitbox.apache.org/repos/asf/commons-imaging.git was 8453134c Bump actions/upload-artifact from 4.3.1 to 4.3.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-imaging) branch master updated (40411b6f -> 069ff830)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-imaging.git from 40411b6f Merge pull request #391 from apache/dependabot/github_actions/actions/checkout-4.1.4 add 8453134c Bump actions/upload-artifact from 4.3.1 to 4.3.3 new 069ff830 Merge pull request #392 from apache/dependabot/github_actions/actions/upload-artifact-4.3.3 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/scorecards-analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
(commons-imaging) branch dependabot/github_actions/actions/checkout-4.1.4 deleted (was b44877e1)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/checkout-4.1.4 in repository https://gitbox.apache.org/repos/asf/commons-imaging.git was b44877e1 Bump actions/checkout from 4.1.3 to 4.1.4 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-imaging) branch master updated (1abc04d4 -> 40411b6f)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-imaging.git from 1abc04d4 Merge pull request #390 from apache/dependabot/github_actions/github/codeql-action-3.25.3 add b44877e1 Bump actions/checkout from 4.1.3 to 4.1.4 new 40411b6f Merge pull request #391 from apache/dependabot/github_actions/actions/checkout-4.1.4 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/coverage.yml| 2 +- .github/workflows/maven.yml | 2 +- .github/workflows/scorecards-analysis.yml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-)
(commons-imaging) branch dependabot/github_actions/github/codeql-action-3.25.3 deleted (was bb33b1d5)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/github/codeql-action-3.25.3 in repository https://gitbox.apache.org/repos/asf/commons-imaging.git was bb33b1d5 Bump github/codeql-action from 3.25.1 to 3.25.3 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-imaging) branch master updated: Use macos-13 for Java 8
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-imaging.git
The following commit(s) were added to refs/heads/master by this push:
new 5671c6bc Use macos-13 for Java 8
5671c6bc is described below
commit 5671c6bc24a060c6b79f7a7bd43783e01159b5d5
Author: Gary Gregory
AuthorDate: Fri Apr 26 14:40:14 2024 -0400
Use macos-13 for Java 8
---
.github/workflows/maven.yml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/.github/workflows/maven.yml b/.github/workflows/maven.yml
index 612549f4..ccc84381 100644
--- a/.github/workflows/maven.yml
+++ b/.github/workflows/maven.yml
@@ -26,7 +26,7 @@ jobs:
continue-on-error: ${{ matrix.experimental }}
strategy:
matrix:
-os: [windows-latest, macos-latest, ubuntu-latest]
+os: [windows-latest, macos-13, ubuntu-latest]
java: [ 8, 11, 17, 21 ]
experimental: [false]
#include:
(commons-exec) 01/01: Merge pull request #183 from apache/dependabot/github_actions/actions/checkout-4.1.4
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/commons-exec.git commit 658d4094162a0e8b84c944e5ed6e2e9f04aea7d9 Merge: ad33a84f 6bfce6d1 Author: Gary Gregory AuthorDate: Fri Apr 26 14:38:55 2024 -0400 Merge pull request #183 from apache/dependabot/github_actions/actions/checkout-4.1.4 Bump actions/checkout from 4.1.3 to 4.1.4 .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/coverage.yml| 2 +- .github/workflows/maven.yml | 2 +- .github/workflows/scorecards-analysis.yml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-)
(commons-exec) branch dependabot/github_actions/actions/checkout-4.1.4 deleted (was 6bfce6d1)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch dependabot/github_actions/actions/checkout-4.1.4 in repository https://gitbox.apache.org/repos/asf/commons-exec.git was 6bfce6d1 Bump actions/checkout from 4.1.3 to 4.1.4 The revisions that were on this branch are still contained in other references; therefore, this change does not discard any commits from the repository.
(commons-exec) branch master updated: Use macos-13 for Java 8
This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-exec.git
The following commit(s) were added to refs/heads/master by this push:
new bf1ad559 Use macos-13 for Java 8
bf1ad559 is described below
commit bf1ad55949a38f680aeedf3b5dcabb9ce105f668
Author: Gary Gregory
AuthorDate: Fri Apr 26 14:37:48 2024 -0400
Use macos-13 for Java 8
---
.github/workflows/maven.yml | 8
1 file changed, 4 insertions(+), 4 deletions(-)
diff --git a/.github/workflows/maven.yml b/.github/workflows/maven.yml
index 949e34e9..6bbf1ffd 100644
--- a/.github/workflows/maven.yml
+++ b/.github/workflows/maven.yml
@@ -27,7 +27,7 @@ jobs:
continue-on-error: ${{ matrix.experimental }}
strategy:
matrix:
-os: [ubuntu-latest, windows-latest, macos-latest]
+os: [ubuntu-latest, windows-latest, macos-13]
java: [ 8, 11, 17, 21 ]
experimental: [false]
#include:
@@ -35,17 +35,17 @@ jobs:
#experimental: true
steps:
-- uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+- uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
with:
persist-credentials: false
-- uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2
+- uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2
with:
path: ~/.m2/repository
key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }}
restore-keys: |
${{ runner.os }}-maven-
- name: Set up JDK ${{ matrix.java }}
- uses: actions/setup-java@99b8673ff64fbf99d8d325f52d9a5bdedb8483e9 #
v4.2.1
+ uses: actions/setup-java@99b8673ff64fbf99d8d325f52d9a5bdedb8483e9 #
v4.2.1
with:
distribution: 'temurin'
java-version: ${{ matrix.java }}
(commons-exec) branch master updated (ad33a84f -> 658d4094)
This is an automated email from the ASF dual-hosted git repository. ggregory pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/commons-exec.git from ad33a84f Merge pull request #181 from apache/dependabot/github_actions/github/codeql-action-3.25.3 add 6bfce6d1 Bump actions/checkout from 4.1.3 to 4.1.4 new 658d4094 Merge pull request #183 from apache/dependabot/github_actions/actions/checkout-4.1.4 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/coverage.yml| 2 +- .github/workflows/maven.yml | 2 +- .github/workflows/scorecards-analysis.yml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-)
